MTJailed / iOS-Security-Papers
A collection of Writeups and Papers about iOS Security
☆25Updated 6 years ago
Related projects: ⓘ
- A fuzzer for the iOS kernel and userland☆44Updated 6 years ago
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆52Updated 6 years ago
- ios iokit fuzzer (really probably isn't that useful anymore tbh)☆60Updated 7 years ago
- CVE-2018-4331: Exploit for a race condition in the GSSCred system service on iOS 11.2.☆24Updated 6 years ago
- Collection of (at time of release) iOS bugs I found☆54Updated 4 years ago
- A tool for reversing IOKit classes from the iOS 12's new kernelcache format.☆23Updated 6 years ago
- xnu kernel heap info leak☆70Updated 4 years ago
- Binary Format of iOS 13 Sandbox Profile Collection☆50Updated 4 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆76Updated 5 years ago
- Slides from my conference presentations.☆78Updated 4 years ago
- load iOS12 kernelcaches and PAC code in IDA☆59Updated 5 years ago
- p-joker -- iOS/MacOS kernelcache/kexts analysis tool☆107Updated 4 years ago
- iOS 11.1.2 kernel exploit and PoC local kernel debugger by @i41nbeer (https://bugs.chromium.org/p/project-zero/issues/detail?id=1417)☆32Updated 6 years ago
- A NEW 64-bit JAILBREAK FOR iOS 10.3,10.3.1,10.3.2,10.3.x. (Untethered).☆42Updated 7 years ago
- multi_path exploit now with remount for iOS 11.3.X (english version)☆19Updated 6 years ago
- Radare2 plugin to parse modern iOS 64-bit kernel caches☆29Updated 5 years ago
- ☆49Updated this week
- Unstripped iOS kernel extensions and more. More coming soon.☆56Updated 4 years ago
- CVE-2018-4087 PoC☆60Updated 5 years ago
- ☆38Updated 3 years ago
- Get kernel symbols on device. No jailbreak required (note: unslid addresses)☆26Updated 6 years ago
- iOS 10.1.1 Project 0 Exploit Compatible with All arm64 devices for Jailbreak Development☆53Updated last year
- Extract a decrypted iOS 64-bit kernelcache☆41Updated this week
- ☆50Updated 4 years ago
- Demo exploit code for CVE-2020-27904, a tfp0 bug.☆65Updated 3 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆58Updated 5 years ago
- Automatically download and decrypt SecureRom stuff (iBSS, iBEC, iBoot, etc.) for all iOS versions available.☆50Updated 4 years ago
- not a jailbreak☆35Updated 6 years ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆109Updated 5 years ago
- ☆56Updated this week